HA! (Replying here and direct)
Lets look at the log:
The Wildcat! SMTP trace....
**************************************************************************
Wildcat! SMTP Server v6.1.451.5
SMTP log started at Thu, 25 Aug 2005 09:24:37
Connection Time: 20050825 09:24:37 cid: 000103F6
SSL Enabled: NO
Client IP: 209.68.5.15 (unknown)
09:24:37 S: 220 winserver.com Wildcat! ESMTP Server v6.1.451.5 ready
09:24:38 C: HELO relay01.pair.com
09:24:38 S: 250 winserver.com, Pleased to meet you.
09:24:39 C: MAIL FROM:<scott(_at_)kitterman(_dot_)com>
09:24:39 S: 250 <scott(_at_)kitterman(_dot_)com>... Sender validation pending.
Continue.
09:24:39 C: RCPT TO:<hsantos(_at_)santronics(_dot_)com>
09:24:40 ** WCX Process: wcsap ret: 550 (Rejected by WCSAP SPF Fail)
09:24:40 S: 550 Return Path not verifiable.
09:24:40 C: QUIT
09:24:40 S: 221 closing connection
09:24:41 ** Completed
Ok, it says SPF failed at WCSAP.. Lets look at the WCSAP log:
20050825 09:24:39 -------------------------------------
20050825 09:24:39 version : 2.01 / 1.62
20050825 09:24:39 calltype : SMTP
20050825 09:24:39 state : rcpt
20050825 09:24:39 srvdom : winserver.com
20050825 09:24:39 srvip : 208.247.131.9
20050825 09:24:39 cip : 209.68.5.15
20050825 09:24:39 cdn : relay01.pair.com
20050825 09:24:39 from : <scott(_at_)kitterman(_dot_)com>
20050825 09:24:39 rcpt : <hsantos(_at_)santronics(_dot_)com>
20050825 09:24:39 ruid : 228947
20050825 09:24:39 testorder : FLT RBL SPF CEP CBV
20050825 09:24:39 sapfilter : pass (time:78)
20050825 09:24:39 saprbl : testing 15.5.68.209.sbl.spamhaus.org
20050825 09:24:39 saprbl : testing 15.5.68.209.list.dsbl.org
20050825 09:24:39 saprbl : testing 15.5.68.209.bl.spamcop.net
20050825 09:24:39 saprbl : pass (time:250)
20050825 09:24:40 sapspf : v=spf1 ip4:64.32.194.73 ip4:207.145.109.250
include:webmail.pair.com ?a:relay.pair.com ?include:megapathdsl.net
?include:spf.trusted-forwarder.org -all
20050825 09:24:40 sapspf : fail (time:422)
20050825 09:24:40 finaltest : SPF GlobalResult=0 CodeResponse=550
20050825 09:24:40 result : reject (0)
20050825 09:24:40 smtp code : 550
20050825 09:24:40 reason : Rejected by WCSAP SPF Fail
20050825 09:24:40 wcsap finish (875 msecs)
Well, I hope I don't have a bug in processing your SPF record. I have to
double check that record.
I'll whitelist you in the mean time....
accept if %CIP% in 209.68.*.* and %RPD% = kitterman.com
Quick question:
Does it make sense to do a linear parse on what has a NEUTRAL result before the
final FAIL (-ALL)? If it doesn't compare in the ?INCLUDE directives, then it
will never get to the FAIL. Correct?
You have:
NEUTRAL NEUTRAL FAIL
How is this suppose to be handle?
Did you expect it to short circuit?
Looks like the our SPF parser set the NEURTAL result for the INCLUDE, but then
it still continueed to look for any more directives and it found your -ALL -
hence the fail.
I would think this is correct parsing. No?
--
Hector Santos, Santronics Software, Inc.
http://www.santronics.com
----- Original Message -----
From: "Scott Kitterman" <spf2(_at_)kitterman(_dot_)com>
Newsgroups: spf.-.sender.policy.framework.discussion
To: <spf-discuss(_at_)v2(_dot_)listbox(_dot_)com>
Sent: Thursday, August 25, 2005 9:28 AM
Subject: [spf-discuss] [OT]Calling Hector Santos
Hector,
I'm unable to reply to the messages you sent me:
Remote host said: 550 Return Path not verifiable.
If you would contact me off-list and tell me what I have to do to write
back to you, I would appreciate it.
Everyone else:
Sorry for the distraction.
Scott K
-------
Sender Policy Framework: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com